Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/AS142346.roa
File: AS142346.roa (raw, json)
Hash identifier: owsdhyA83K8wVfsYQ2DE7U426LWfqhD5yxpgLMnGIsk=
Subject key identifier: 1F:C2:3B:07:97:B1:27:57:AE:64:8B:83:9C:91:3B:1F:41:AF:AA:88
Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B
Certificate serial: 4CEFA2A3C09FFC88B5666CAD5A2C8055F4C642B6
Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS142346.roa
Signing time: Thu 14 Nov 2024 07:00:00 +0000
ROA not before: Thu 14 Nov 2024 06:55:00 +0000
ROA not after: Thu 13 Nov 2025 07:00:00 +0000
asID: 142346
IP address blocks: 2001:df1:cc40::/48 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
4c:ef:a2:a3:c0:9f:fc:88:b5:66:6c:ad:5a:2c:80:55:f4:c6:42:b6
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A91862140000
Validity
Not Before: Nov 14 06:55:00 2024 GMT
Not After : Nov 13 07:00:00 2025 GMT
Subject: CN=1FC23B0797B12757AE648B839C913B1F41AFAA88
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c5:ac:ee:ba:34:e0:c4:50:7d:70:e3:ef:6e:ba:
de:8b:51:1c:b3:65:4d:c1:bf:d6:36:4b:97:24:3f:
a4:87:34:63:ef:4e:c0:8b:b6:b9:de:fd:09:9f:e0:
8c:d1:c6:52:e0:b3:98:b2:37:d3:f8:8e:1c:6a:66:
58:5e:27:03:a5:e3:e7:f5:32:de:f1:63:d2:ed:e1:
cc:61:e9:4e:40:e0:34:13:d7:63:a4:a8:91:31:7e:
4e:33:ba:de:8d:46:42:4b:19:36:50:69:3a:45:41:
59:d0:56:1d:a5:2d:4f:65:42:d6:bd:ca:89:d7:35:
18:44:1a:17:49:dc:67:0c:27:61:45:86:dc:fc:c1:
3f:ee:54:d4:59:6d:cd:79:e2:a1:f0:0b:1a:30:4f:
f0:af:0b:00:02:23:22:80:df:e9:4c:b6:e2:ff:b0:
3d:93:73:4f:9c:2c:98:76:75:c8:6b:f5:80:54:d1:
10:46:8d:82:eb:2c:67:cf:60:4b:b4:7f:e8:f9:39:
11:b6:8c:d9:69:60:2b:17:b5:67:95:1c:4a:82:cd:
7e:82:cb:0c:db:84:d8:91:cf:8e:6b:7b:fc:43:73:
61:f7:46:b3:af:9a:7e:ba:22:6e:14:8c:58:a5:47:
fd:24:04:49:41:9d:e0:ee:45:6a:8e:62:40:4f:b2:
fe:41
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1F:C2:3B:07:97:B1:27:57:AE:64:8B:83:9C:91:3B:1F:41:AF:AA:88
X509v3 Authority Key Identifier:
keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS142346.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2001:df1:cc40::/48
Signature Algorithm: sha256WithRSAEncryption
36:e1:66:a7:6e:a8:8d:92:db:0a:74:66:06:0f:bb:a8:68:df:
b5:d3:e0:fd:c7:fb:b7:2a:81:21:e0:d1:b8:a8:2a:fa:b8:5c:
ff:eb:b2:d3:e9:bd:ce:36:14:91:79:19:2d:c4:30:0c:16:58:
3d:fc:8a:4b:55:1f:52:8b:38:ad:ff:3b:ee:ca:08:43:61:69:
4c:bb:40:80:91:c0:36:6b:b0:b3:32:5e:40:e9:78:4e:e5:11:
1f:aa:e1:3c:4c:62:9e:e9:72:a9:f3:71:40:d4:a2:33:e3:35:
83:c9:44:06:97:86:12:00:30:dd:5e:cc:1b:e3:cd:04:f1:01:
e7:e7:b3:6c:ad:8f:0d:cf:88:17:bb:60:be:fb:08:8b:da:38:
36:91:43:6e:af:39:49:dc:a4:42:20:ff:a2:75:99:10:9b:4e:
6b:d1:1d:7b:17:ed:3a:1a:90:91:cc:86:76:37:c7:44:6f:e6:
55:45:d8:1d:0a:50:f0:68:dd:87:67:c5:df:8b:65:7b:fa:a0:
9f:d0:19:e6:8e:e3:a8:75:a4:06:b9:07:b8:4e:58:06:0c:22:
69:1f:b5:b1:ba:78:4c:fe:97:3b:5b:b3:2c:40:fc:96:08:05:
b0:1e:89:4d:80:e5:e2:f5:95:78:85:af:b8:1c:79:65:14:1c:
63:ae:22:cb
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 5 06:24:39 2025 by rpki-client